Description

Unspecified vulnerability in the NumberFormatter::setSymbol (aka numfmt_set_symbol) function in the Intl extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (application crash) via an invalid argument, a related issue to CVE-2010-4409.

Remediation

References

CVE-2011-1467

Related Vulnerabilities

MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4302)

Oracle HTTP Server Other Vulnerability (CVE-2006-5346)

WordPress Plugin BuddyPress Activity Plus Multiple Vulnerabilities (1.6.1)

WordPress Plugin Picturesurf Gallery 'upload.php' Arbitrary File Upload (1.2)

CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-37695)

Severity

Medium

Classification

CVE-2011-1467

Tags

Missing Update Known Vulnerabilities